New Products Pass SAML 2.0 Interoperability Testing
Liberty Alliance Announces Latest Companies Passing SAML 2.0 Interoperability Testing
Liberty Interoperable Event Features Full-Matrix and eGovernment Profile Testing as Global Demand for Interoperable Identity Solutions Continues to Grow
Wednesday, September 24, 2008.
Liberty Alliance, the global identity community working to build a more trustworthy Internet for businesses, governments and people worldwide, today announced that products from CA; NTT Software; Ping Identity; RSA, The Security Division of EMC; and Ubisecure have passed Liberty Alliance SAML 2.0 interoperability testing. These vendors participated in the second Liberty Interoperable event to offer full-matrix and eGovernment profile testing managed by the Drummond Group Inc. Liberty Alliance and the Drummond Group will host a public webcast outlining the benefits full-matrix testing is delivering to the global identity industry at 8:00AM US PT (5:00 pm CET) on Tuesday, October 14, 2008.
"The Liberty Interoperable full-matrix SAML 2.0 testing program represents a new era in demonstrating how secure and privacy-respecting enterprise and user-driven identity-enabled applications can interoperate across devices, networks and regions," said Brett McDowell, executive director, Liberty Alliance. "Identity products passing Liberty Interoperable SAML 2.0 full-matrix testing provide organizations with tremendous value because they have proven to interoperate with each other across a wide variety of real-world deployment scenarios."
Liberty Alliance launched the Liberty Interoperable program in 2003 and since then nearly 85 identity products and solutions from vendors around the world have passed Liberty Alliance testing. During 4Q 2007, the program was expanded to include testing for the E-Authentication SAML 2.0 profile to support the US General Services Administration (GSA) mandate that vendors pass Liberty Alliance SAML 2.0 testing as a prerequisite for participating in the US E-Authentication Identity Federation. The 2008 event offered the most extensive testing scope to date and featured an updated eGovernment profile, new Service Provider (SP) and Identity Provider (IdP) requirements and a new multiple SP logout scenario.
In partnership with the Drummond Group Inc., Liberty Alliance enhanced the Interoperable program by incorporating Web-based full-matrix testing to meet growing global demand for interoperable, secure and privacy-respecting identity-enabled SAML 2.0 applications and services. The Web-based full-matrix testing allows vendors to participate from anywhere in the world with participants from the 2008 event located in Asia, Europe and North America. The Web-based approach also allows for more rigorous processes for ensuring products meet interoperability requirements for SAML 2.0 and the SAML 2.0 eGovernment profile.
During the testing period held from August 22 — August 29, 2008, the following products and services demonstrated interoperability based on a variety of SAML 2.0 conformance modes. A detailed list outlining what each vendor passed is available at iop.projectliberty.org.
Products and Services Demonstrating SAML 2.0 Interoperability
CA — CA SiteMinder Federation Security Services r12.1 extends the Web single sign-on experience provided by CA SiteMinder Web Access Manager to applications and portals provided internally by other organizational business units or externally on the Internet by partners or application outsourcers. It enables a CA SiteMinder WAM-protected site to act as an identity provider, a service provider, or both and provides broad support of federation standards such as SAML and WS-Federation and leverages the scalability, reliability, and manageability capabilities of CA SiteMinder WAM.
NTT Software — TrustBind Federation Manager (1.1) delivers a complete, high-performance, carrier-grade SAML 2.0 solution in the form of a Java component module. With support for multiple operating systems and middleware platforms, TrustBind allows for fast and inexpensive deployments.
Ping Identity — PingFederate provides an organization's users safe access to Internet applications without the need for repeat logins. Identity federation deployments that used to take six months or more now take days with PingFederate's easy-to-use software. Over a dozen integration kits let PingFederate link to existing identity and application infrastructure. PingFederate 5.2 includes automated provisioning and advanced user access methods to support comprehensive SSO for Salesforce and GoogleApps.
RSA, The Security Division of EMC — RSA Federated Identity Manager v4.1 is engineered to enable enterprises to securely and confidentially share trusted user identities between disparate internal business units, customers, and/or partners. It is designed to help simplify administration and accelerate deployment timelines. RSA Federated Identity Manager v4.1 supports OASIS SAML 1.1 and SAML 2.0, OASIS Web Services Federation v1.0 (WSFED) and interoperability with Microsoft Active Directory Federation Services v1.0 (ADFS). The solution includes interoperability with numerous authentication authorities including Oracle BEA Weblogic, IBM WebSphere, Microsoft Integrated Windows Authentication (IWA) and Microsoft .NET technology. Partner configuration management is aided by a configuration dashboard and automated metadata exchange.
Ubisecure — Ubilogin SSO 5.0 is an efficient-to-deploy Single Sign-On, Access Control and Federation solution providing extensive Authentication and Authorization for Intranet, Extranet, Web Services and mobile applications. It provides efficiency and cost savings in identity management and integration with the innovative Identity Broker Engine (IBE) technology. Authentication is based on more than 20 mechanisms such as Mobile-PKI authentication, various Scandinavian bank-authentication services, One-Time Passwords over SMS and printed; and many more. Integration solutions are available out-of-the-box for a variety of platforms and applications, such as SAML SPs for Oracle WebLogic, Microsoft ASP.NET and Microsoft Sharepoint. Standards-based integration based on SAML, Liberty ID-WSF and WS-Federation. Ubilogin SSO is in use in various service provider, network operator, e-government and enterprise environments. Ubilogin SSO reduces application development costs, reduces operation costs and improves usability.
About the October 14, 2008 Full-Matrix Webcast
Hosted by Liberty Alliance and Drummond Group, Inc., the public webcast will highlight the benefits full-matrix interoperability testing is delivering to organizations and people. Participants will understand how to leverage products that have passed Liberty Interoperable full-matrix testing to more easily deploy successful SAML 2.0-based digital identity management solutions. More information and registration for the one-hour event is available at http://tinyurl.com/5yz9oo.
About the Liberty Interoperable Program
Businesses, governments and organizations around the world are deploying SAML 2.0-based identity-enabled applications to protect identity data, deliver secure business services, help meet regulatory requirements and provide people with better protection against online fraud and identity theft. The ongoing success of the Liberty Interoperable program is demonstrated by the widescale deployment of Liberty-enabled products and the increasing number of businesses and governments now requiring vendors to pass Liberty Alliance testing. A list of all vendor products that have passed Liberty Alliance testing is available.
Prepared by Robin Cover for The XML Cover Pages archive. See also "Liberty Alliance Specifications for Federated Network Identification and Authorization."